Security Advisory

CVE-2025-53014

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-07-14 17:59:25

Last updated 2025-11-03 18:13:09

Assigner GitHub_M

State PUBLISHED

Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-0 and 6.9.13-26 have a heap buffer overflow in the `InterpretImageFilename` function. The issue stems from an off-by-one error that causes out-of-bounds memory access when processing format strings containing consecutive percent signs (`%%`). Versions 7.1.2-0 and 6.9.13-26 fix the issue.

← Browse all CVEs View on cve.org ↗